Friday, April 26, 2024
Key Issues Optical clocks Prototype funding SPAFORGEN
MITRE has raised issues with potential costs for contractors who want to do business with the Defense Department in addressing assessment gaps and accommodating for potential future changes in the maturity model for the upcoming Pentagon cyber certification program, in response to a proposed rule to implement the program.
The National Defense Information Sharing and Analysis Center has published a "shopping guide" to help small and medium-sized businesses pick an assessor who meets their needs to reach compliance with the Pentagon's Cybersecurity Maturity Model Certification program.
The Coalition for Government Procurement is seeking clarity on how the Defense Department will allow external service providers to play a role in achieving compliance with the Pentagon's Cybersecurity Maturity Model Certification program, in a filing on the proposed rule to implement the effort.
The Canadian government is asking the Defense Department to facilitate establishing reciprocity between the Pentagon's Cybersecurity Maturity Model Certification program and Canada's new cybersecurity framework, in response to a DOD proposed rule to implement the U.S. initiative.
The Edison Electric Institute is making recommendations for how controlled unclassified information should be addressed in Defense Department contracts with Cybersecurity Maturity Model Certification requirements in a manner that aligns with current practices for sharing sensitive data in the electric sector.
Wireless group CTIA supports the Defense Department's decision to create an exemption for telecommunications providers under the Cybersecurity Maturity Model Certification program, while asking for more guidance on the trigger for applicability in the response to a proposed rule on implementation.
The Office of Advocacy at the Small Business Administration has outlined four areas of concern in the Pentagon's proposed rule to implement the Cybersecurity Maturity Model Certification program.
The Defense Department has finalized a rulemaking to expand eligibility requirements for its defense industrial base information sharing program.
The American Gas Association is asking the Defense Department to consider potential avenues where contractors and subcontractors can use cyber policies at other agencies to fulfill requirements under the Cybersecurity Maturity Model Certification program.
The Information Technology Industry Council sees an opportunity for the Pentagon's Cybersecurity Maturity Model Certification program to become a standard across the federal government, according to a filing from the trade association on the first CMMC proposed rule.
The Professional Services Council is calling for the Defense Department to do further analysis on potential costs for contractors and their suppliers to comply with the Cybersecurity Maturity Model Certification program before finalizing proposed regulations.
The accreditation body behind the Pentagon's Cybersecurity Maturity Model Certification program is suggesting changes to the proposed rule to implement the major initiative, including involving the Defense Department in the assessment appeals process and establishing consistency in conflict-of-interest requirements.
A coalition of industry groups led by the U.S. Chamber of Commerce is seeking flexibility when it comes to implementing requirements in the Pentagon’s Cybersecurity Maturity Model Certification program, arguing that it is needed to address compliance costs as work to finalize regulations gets underway.
The Aerospace Industries Association is asking the Defense Department to provide information on how it will address flow-down requirements and the roles and responsibilities for primes and subcontractors, in response to the first proposed rule for the Pentagon's Cybersecurity Maturity Model Certification program.
A coalition representing large defense and tech groups is asking the Defense Department to provide clarity on marking controlled unclassified information, defining responsibilities in contracts and flexibility on addressing assessment gaps, in formal comments on the first proposed rule for the Pentagon's Cybersecurity Maturity Model Certification program.
The Pentagon's Cybersecurity Maturity Model Certification program enters a new stage this week with the end of the public comment period for a massive, proposed rulemaking that sets up parameters to implement the long-awaited initiative.
The Defense Department is limiting its engagement plans to an "informational" video for the first rulemaking under the Pentagon's Cybersecurity Maturity Model Certification program in advance of the Feb. 26 comment deadline, according to a Federal Register notice published today.
Pentagon officials are providing an overview of major ecosystem components and upcoming regulations for the Cybersecurity Maturity Model Certification program in a new recorded video posted in advance of a Feb. 26 public comment deadline for the first rulemaking and eight draft guidance documents.
The Defense Department is turning down a request from industry groups to extend the comment period for its long-awaited proposed rule to implement the Cybersecurity Maturity Model Certification program, according to a Pentagon spokesperson.
A coalition representing major defense associations and government contractors is asking the Defense Department to extend the comment period for a proposed rule to implement the Pentagon's cyber certification program, in a new letter highlighting three public comment periods for cyber rulemakings that closed last week.